The end of the year is approaching, and the developers of the password manager NordPass once again published a list most used and weakest passwords of 2020. Alas, over the past 12 months, password security hasn't improved at all.
To compile the annual report, experts examined 275,699,516 passwords leaked to the network in various data breaches and found that the most common passwords are still incredibly easy to guess: it can take less than a second or two for attackers to crack accounts with these passwords. In addition, only 44% of the examined credentials were considered unique.
In 2020, the most popular password options were: "123456", "123456789", "picture1", "password" and "12345678"
Breaking all of these passwords with the exception of "picture1" via brute-force will take a matter of seconds using a regular dictionary attack. As for "picture1", it will take about three hours to crack it.
In addition to the most obvious combinations, such as "123456", people still often use other weak passwords that are extremely easy to guess. Among them are: "football", "iloveyou", "letmein" and "pokemon".
The researchers remind that when choosing a password, avoid obvious patterns or repetitions, such as letters or numbers located next to each other on the keyboard. Adding an uppercase letter, symbols, and numbers can also help make your password more secure. Also, under no circumstances should you use personal information as a password, such as your date of birth or name.
A complete list of the worst passwords of 2020 can be found in the blog of experts, and below you can see the TOP 10.